The SSL capability for Konqueror in KDE 3.0.2 and earlier does not verify the Basic Constraints for an intermediate CA-signed certificate, which allows remote attackers to spoof the certificates of trusted sites via a man-in-the-middle attack.

KICQ 2.0.0b1 allows remote attackers to cause a denial of service (crash) via a malformed message.

klprfax_filter in KDE2 KDEUtils allows local users to overwrite arbitrary files via a symlink attack on the klprfax.filter temporary file.

kfm as included with KDE 1.x can allow a local attacker to gain additional privileges via a symlink attack in the kfm cache directory in /tmp.

The KApplication class in the KDE 1.1.2 configuration file management capability allows local users to overwrite arbitrary files.

Buffer overflow in KDE kdesud on Linux allows local uses to gain privileges via a long DISPLAY environmental variable.

The KDE kscd program does not drop privileges when executing a program specified in a user's SHELL environmental variable, which allows the user to gain privileges by specifying an alternate program to execute.

The libmediatool library used for the KDE mediatool allows local users to create arbitrary files via a symlink attack.

Vulnerability in KDE konsole allows local users to hijack or observe sessions of other users by accessing certain devices.

KDE kppp allows local users to create a directory in an arbitrary location via the HOME environmental variable.